Description
File upload vulnerability in MCMS 5.0 allows attackers to execute arbitrary code via a crafted thumbnail. A different vulnerability than CVE-2022-31943.
Remediation
References
https://github.com/ming-soft/MCMS
https://github.com/ming-soft/MCMS/issues/42
Related Vulnerabilities
CVE-2023-47324 Vulnerability in maven package org.silverpeas.core:silverpeas-core
CVE-2022-23458 Vulnerability in maven package org.webjars.npm:tui-grid
CVE-2023-45280 Vulnerability in maven package org.yamcs:yamcs-core
CVE-2018-15685 Vulnerability in npm package electron
CVE-2020-28436 Vulnerability in npm package google-cloudstorage-commands